General

  • Target

    5a409013988f033e050024d87e32038e4b036295799415d240903e3d0a127fc3

  • Size

    256KB

  • Sample

    221028-yq4e3adgdl

  • MD5

    0c071a67c99e505b573db30387c2ace7

  • SHA1

    353e0312e7c7b28910e5a00740cf26498b15453b

  • SHA256

    5a409013988f033e050024d87e32038e4b036295799415d240903e3d0a127fc3

  • SHA512

    c7df245acc8cb143609c8c6f3e5283d58f59bd3b00fab84c42a2e8672334f46f7a6ec7a3d2303f85175a6a8ecd75aa107f257b0d0c6b772be8445736b8c559f3

  • SSDEEP

    6144:bvvuchulnYvSOEt5zpaiRhcuGE07v6a8:bXU+wNxRhTKj6

Malware Config

Targets

    • Target

      5a409013988f033e050024d87e32038e4b036295799415d240903e3d0a127fc3

    • Size

      256KB

    • MD5

      0c071a67c99e505b573db30387c2ace7

    • SHA1

      353e0312e7c7b28910e5a00740cf26498b15453b

    • SHA256

      5a409013988f033e050024d87e32038e4b036295799415d240903e3d0a127fc3

    • SHA512

      c7df245acc8cb143609c8c6f3e5283d58f59bd3b00fab84c42a2e8672334f46f7a6ec7a3d2303f85175a6a8ecd75aa107f257b0d0c6b772be8445736b8c559f3

    • SSDEEP

      6144:bvvuchulnYvSOEt5zpaiRhcuGE07v6a8:bXU+wNxRhTKj6

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Executes dropped EXE

    • Sets DLL path for service in the registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks